SecurityHome.eu Skipfish

Articles
Books
Bulletins
Events
Exploits
Hardware
Mailings
Malware
News
OS
Software
Vulnerabilities

Contact us
Forum
Links
RSS
Site Map

Home / software

Skipfish
Posted on 22 March 2010
From: Google
A fully automated, active web application security reconnaissance tool.
Key features:

High speed: pure C code, highly optimized HTTP handling, minimal CPU footprint - easily achieving 2000 requests per second with responsive targets.

Ease of use: heuristics to support a variety of quirky web frameworks and mixed-technology sites, with automatic learning capabilities, on-the-fly wordlist creation, and form auto-completion.

Cutting-edge security logic: high quality, low false positive, differential security checks, capable of spotting a range of subtle flaws, including blind injection vectors.

The tool is believed to support Linux, FreeBSD 7.0+, MacOS X, and Windows (Cygwin) environments.

TOP

Malware :

Trojan:Java/Rowindal
Trojan:Win32/Scimstal.A
TrojanProxy:Win32/Koobface.gen!Q
VirTool:WinNT/Koobface.gen!F
Worm:MSIL/Rutispud.A
TrojanDownloader:Win32/Modgof.A
Worm:Win32/Pushbot.TK
TrojanDownloader:Win32/Telovsed.A
Trojan:WinNT/Bubnix.J
PWS:Win32/QQpass.EI.dll

Last 20

Exploits :

Dataville CMS (classificados.php) SQL Injection Vulnerabilit
Plugins Dll Hijacking Exploit
Internet Download Manager module (idmmkb.dll) Tonec Inc
WebWiz Denial of Service POC
Dataville CMS SQL Injection Vulnerability
BKBilisim Portal Multiple Vulnerability
Mainely Newspaper CMS Persistent XSS Vulnerability
Live School Portal Database Disclosure Exploit (.py)
hordeaf-xss.txt
joomlaaardvertiser-sql.txt

Last 20